The Microsoft Security Org Chart

Free registration required

Executive Summary

Microsoft has built an organizational structure that provides rings of defense that weed out vulnerabilities. Developers are trained in best coding practices and use automated tools on a daily basis. Feature crews perform threat modeling, code reviews, and other security functions. Security DRIs act as resources for feature crews and interface with higher-level security groups. Product-level security groups determine engineering practices for the product and wring out vulnerabilities that involve the interaction of multiple components. Microsoft's global security team keeps the SDL and tools up to date to mitigate recent threats and works with security researchers and even hackers to stay up to date on the state of the art.

  • Format: PDF
  • Size: 406.3 KB